1. Forum
  2. Usenet
  3. LINUX.DEBIAN.BUGS.RC

  • Bug#1104933: marked as pending in activemq

    From Emmanuel Arias@21:1/5 to All on Mon Jun 2 17:40:01 2025
    Control: tag -1 pending

    Hello,

    Bug #1104933 in activemq reported by you has been fixed in the
    Git repository and is awaiting an upload. You can see the commit
    message below and you can check the diff of the fix at:

    https://salsa.debian.org/java-team/activemq/-/commit/622badd3b35d8a4a801ee8595ccf66eaaf1354cc

    ------------------------------------------------------------------------ CVE-2025-27533: Avoid memory allocation with excessive size value during unmarshalling of OpenWire commands. The size value of buffers was not properly validated which could lead to excessive memory allocation and be exploited to cause a denial of
    service (Closes: #1104933).

    * CVE-2025-27533: Avoid memory allocation with excessive size value during
    unmarshalling of OpenWire commands. The size value of buffers was not
    properly validated which could lead to excessive memory allocation
    and be exploited to cause a denial of service (Closes: #1104933).
    - d/control: Add libjavassist-java as build dependency. It is needed for
    the patch. ------------------------------------------------------------------------

    (this message was generated automatically)
    --
    Greetings

    https://bugs.debian.org/1104933

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Emmanuel Arias@1:229/2 to All on Mon Jun 2 17:40:01 2025
    From: [email protected]

    Control: tag -1 pending

    Hello,

    Bug #1104933 in activemq reported by you has been fixed in the
    Git repository and is awaiting an upload. You can see the commit
    message below and you can check the diff of the fix at:

    https://salsa.debian.org/java-team/activemq/-/commit/622badd3b35d8a4a801ee8595ccf66eaaf1354cc

    ------------------------------------------------------------------------ CVE-2025-27533: Avoid memory allocation with excessive size value during unmarshalling of OpenWire commands. The size value of buffers was not properly validated which could lead to excessive memory allocation and be exploited to cause a denial of
    service (Closes: #1104933).

    * CVE-2025-27533: Avoid memory allocation with excessive size value during
    unmarshalling of OpenWire commands. The size value of buffers was not
    properly validated which could lead to excessive memory allocation
    and be exploited to cause a denial of service (Closes: #1104933).
    - d/control: Add libjavassist-java as build dependency. It is needed for
    the patch. ------------------------------------------------------------------------

    (this message was generated automatically)
    --
    Greetings

    https://bugs.debian.org/1104933

    --- SoupGate-Win32 v1.05
    * Origin: you cannot sedate... all the things you hate (1:229/2)